| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP 23.36.76.226:0
ASN#20940 Akamai International B.V.
Hash6eb0a77aa4a20639a06d9621742007c2 d2d03beeb111049117b70d5f3dff3698a671ef8a 62c2da0800bf8efb6bb985b2eb046fa863e0b394681fb2ab187a9c4836fbd320
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62C2DA0800BF8EFB6BB985B2EB046FA863E0B394681FB2AB187A9C4836FBD320"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2807
Expires: Fri, 24 Feb 2023 12:41:07 GMT
Date: Fri, 24 Feb 2023 11:54:20 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP 23.36.76.226:0
ASN#20940 Akamai International B.V.
Hashbbe5e8dc913bdcab76f9fe8851ea2e77 9215fadd003873382ed2a4ace79ba337adadd692 e6094932dd4de52ea6360bdfbe8bb15951ebd76255766eee627c5de6f83fcea8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E6094932DD4DE52EA6360BDFBE8BB15951EBD76255766EEE627C5DE6F83FCEA8"
Last-Modified: Wed, 22 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4782
Expires: Fri, 24 Feb 2023 13:14:02 GMT
Date: Fri, 24 Feb 2023 11:54:20 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash7f03faaba3392caae6dae54467bfdf6d 57ea1f14e8bfbcca8190c706d708c9fda12442c1 02ac551ba61fcbc6b04f244df065948b181a8a258db5c2e197aae66fdfcea8ee
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 24 Feb 2023 11:54:00 GMT
content-type: application/json
age: 20
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP 23.36.76.226:0
ASN#20940 Akamai International B.V.
Hashd4569ebd95f766b8f22ed69d69334c37 a7fcd3f640877885077a4126708968d7e1e0d252 e485343a8251f50009506dfc6a42c82ca6b09b434d1e0984ea7c2dfea7dcd28d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E485343A8251F50009506DFC6A42C82CA6B09B434D1E0984EA7C2DFEA7DCD28D"
Last-Modified: Wed, 22 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3115
Expires: Fri, 24 Feb 2023 12:46:15 GMT
Date: Fri, 24 Feb 2023 11:54:20 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain IP 34.160.144.191:0
File typePEM certificate\012- , ASCII text Hashb5ba6334e73496995e3e3a9ecd0eb323 ad80d3b7718c28364e8c2004fb38a13a1747e462 aa5abb52515c6383c014aadb63a86c9f798ad64de53c0218616c1fc6d424d2e2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: IlwojsedQaSWbAjMJLF5Q4QMI4F6US9I7iZBk2c4Co0aTvd0GQqzCZmTFu8wozA/BAOcRAc1bzw=
x-amz-request-id: VGR6A0MDTPYTSRD3
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 24 Feb 2023 11:49:30 GMT
age: 290
last-modified: Sat, 18 Feb 2023 20:28:27 GMT
etag: "b5ba6334e73496995e3e3a9ecd0eb323"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 24 Feb 2023 11:54:20 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| diamondgroupconsultants.com/well-known/boatest/billing.php | 151.101.194.159 | 301 Moved Permanently | 162 B |
URL HTTP/1.1diamondgroupconsultants.com/well-known/boatest/billing.php IP 151.101.194.159:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /well-known/boatest/billing.php HTTP/1.1
Host: diamondgroupconsultants.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: keep-alive
Content-Length: 162
Content-Type: text/html
Location: https://diamondgroupconsultants.com/well-known/boatest/billing.php
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer-when-downgrade
X-FW-Server: Flywheel/5.1.0
X-FW-Hash: wagq9jzt1o
X-FW-Version: 5.0.0
Server: Flywheel/5.1.0
Accept-Ranges: bytes
Date: Fri, 24 Feb 2023 11:54:21 GMT
X-Served-By: cache-bma1637-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1677239661.651555,VS0,VE480
Vary: Authorization
X-FW-Serve: TRUE
X-FW-Static: NO
X-FW-Type: VISIT
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Expires, Last-Modified, Cache-Control, ETag, Backoff, Content-Type, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 24 Feb 2023 11:51:26 GMT
age: 175
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP 23.36.76.226:0
ASN#20940 Akamai International B.V.
Hash4aaa1f1be68ba53b441e577dcbf8b7c1 618b2e62b7f2feb82093a3706573e18ff9f69827 8d3978b35fd96458b8fff71c9dbb47ab616dfd49d669027fd6c5a52a4e9bafa0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8D3978B35FD96458B8FFF71C9DBB47AB616DFD49D669027FD6C5A52A4E9BAFA0"
Last-Modified: Wed, 22 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2378
Expires: Fri, 24 Feb 2023 12:33:59 GMT
Date: Fri, 24 Feb 2023 11:54:21 GMT
Connection: keep-alive
|
|
| push.services.mozilla.com/ | 52.41.156.90 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP 52.41.156.90:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 8Vm2Zoanek0YsV6WV6Ly8Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: QofckJWYbJe52bH2y63DbvMN7Iw=
|
|
| diamondgroupconsultants.com/well-known/boatest/billing.php | 151.101.194.159 | 302 Found | 254 B |
URL HTTP/2diamondgroupconsultants.com/well-known/boatest/billing.php IP 151.101.194.159:0
File typeHTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text Hashb7d78b263c25293880947b3c6adf5015 b0899fcf50d26dded8b2103ce3013708303f6d7a 11903003e26b6009d5562ace1e83448795cbfd683add9485286638f9d1cb0a8a
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /well-known/boatest/billing.php HTTP/1.1
Host: diamondgroupconsultants.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
location: https://s.id/kY66E
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-dynamic: TRUE
x-fw-hash: wagq9jzt1o
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 24 Feb 2023 11:54:22 GMT
x-served-by: cache-bma1652-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1677239661.186621,VS0,VE1331
vary: Authorization
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 254
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP 23.36.76.226:0
ASN#20940 Akamai International B.V.
Hashcd04d923e6b3cbd7cac3c56d18ca9016 7d3205fb454124635afcbfcf2265ce504c778ef1 fc857fad800eb3c6f2a3f28007b1b81f2a95e4968d376f47238a681f9c958475
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC857FAD800EB3C6F2A3F28007B1B81F2A95E4968D376F47238A681F9C958475"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14871
Expires: Fri, 24 Feb 2023 16:02:13 GMT
Date: Fri, 24 Feb 2023 11:54:22 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP 23.36.76.226:0
ASN#20940 Akamai International B.V.
Hashcd04d923e6b3cbd7cac3c56d18ca9016 7d3205fb454124635afcbfcf2265ce504c778ef1 fc857fad800eb3c6f2a3f28007b1b81f2a95e4968d376f47238a681f9c958475
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC857FAD800EB3C6F2A3F28007B1B81F2A95E4968D376F47238A681F9C958475"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14871
Expires: Fri, 24 Feb 2023 16:02:13 GMT
Date: Fri, 24 Feb 2023 11:54:22 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP 23.36.76.226:0
ASN#20940 Akamai International B.V.
Hashcd04d923e6b3cbd7cac3c56d18ca9016 7d3205fb454124635afcbfcf2265ce504c778ef1 fc857fad800eb3c6f2a3f28007b1b81f2a95e4968d376f47238a681f9c958475
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC857FAD800EB3C6F2A3F28007B1B81F2A95E4968D376F47238A681F9C958475"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14871
Expires: Fri, 24 Feb 2023 16:02:13 GMT
Date: Fri, 24 Feb 2023 11:54:22 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP 23.36.76.226:0
ASN#20940 Akamai International B.V.
Hashcd04d923e6b3cbd7cac3c56d18ca9016 7d3205fb454124635afcbfcf2265ce504c778ef1 fc857fad800eb3c6f2a3f28007b1b81f2a95e4968d376f47238a681f9c958475
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC857FAD800EB3C6F2A3F28007B1B81F2A95E4968D376F47238A681F9C958475"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14871
Expires: Fri, 24 Feb 2023 16:02:13 GMT
Date: Fri, 24 Feb 2023 11:54:22 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F14d33f5b-7d9e-43b3-80d8-b09ed1779cc9.jpeg | 34.120.237.76 | 200 OK | 9.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F14d33f5b-7d9e-43b3-80d8-b09ed1779cc9.jpeg IP 34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash75c51c003a7b1577d725dc96862af3e2 6da59a43b08277208fb29dfd6915cc5e6fffce46 e12a642e1a11f7b783cbaac9af2c0d7ab54360fb4e31bb5899592605a99ce78d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F14d33f5b-7d9e-43b3-80d8-b09ed1779cc9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9381
x-amzn-requestid: 67f5dcd4-06ed-434e-929e-dea33f3206c2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Az9FNFpQoAMF6Mw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f7dbba-017f87b61ceda06c1390b79d;Sampled=0
x-amzn-remapped-date: Thu, 23 Feb 2023 21:33:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xQ_Os-FKooDME-qFYA2tnFu6L0gofEUZZ-HA7DMTXVlElbjYWV1V-w==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Feb 2023 21:48:06 GMT
age: 50776
etag: "6da59a43b08277208fb29dfd6915cc5e6fffce46"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2fafbb00-9b17-46ac-bf85-f6839e1c4460.jpeg | 34.120.237.76 | 200 OK | 9.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2fafbb00-9b17-46ac-bf85-f6839e1c4460.jpeg IP 34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash6e6a96712407e6157d626667997afc81 222de98cf9a30714bd7708c7f09dbe86b36eb01d 1cf001d922fbeab8cece0e04ab0ba710bece40f1e6dc6a44104a041c6e2d3e77
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2fafbb00-9b17-46ac-bf85-f6839e1c4460.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9391
x-amzn-requestid: 43106fa3-86dc-404b-a632-b1742d6d0729
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Az9dEGBLoAMFm3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f7dc53-6f67759f554549454c6ec79d;Sampled=0
x-amzn-remapped-date: Thu, 23 Feb 2023 21:36:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: YDK9Qoj6xh3PQA7lRyZpTmmJFo4bZd9g-bBLPfIyBtqFKadv5Q6gNA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Feb 2023 21:54:20 GMT
etag: "222de98cf9a30714bd7708c7f09dbe86b36eb01d"
content-type: image/jpeg
age: 50402
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99566e26-5cf6-488d-a6e5-b530ba2d6abd.jpeg | 34.120.237.76 | 200 OK | 5.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99566e26-5cf6-488d-a6e5-b530ba2d6abd.jpeg IP 34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash24a0eb4167db217d5a1f4e43e7e8ec59 6f68ec9885f665154245aa488b3317b1fc4fe5df f9b4afbe9c3d7f20cbd6a9be972c25e7c9d4c0abbee67c312b7f77e04cb43731
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99566e26-5cf6-488d-a6e5-b530ba2d6abd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5437
x-amzn-requestid: 96c456f0-9a0e-402e-996b-37d6a3396ec7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Az9IkGpQoAMFhMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f7dbd0-2229ed167c3d2be8237d0b6b;Sampled=0
x-amzn-remapped-date: Thu, 23 Feb 2023 21:34:08 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BrFEMFJgc529-Y7Vpt6jlsr8mBuQClRAy1l-pV31A87UsVU2-UlCvw==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Feb 2023 22:22:41 GMT
age: 48701
etag: "6f68ec9885f665154245aa488b3317b1fc4fe5df"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ea4a584-48cb-47f9-b1a1-2f7ad3191105.jpeg | 34.120.237.76 | 200 OK | 8.3 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ea4a584-48cb-47f9-b1a1-2f7ad3191105.jpeg IP 34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash8e25e8d8dc182454d1977519b9ca1901 9e477e320d6982a734b2d6ac0517cce246173ddf c4a00609fa03a42e4fc919e89d5ebc0df8718ab5b533952f20fc46332a83c973
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ea4a584-48cb-47f9-b1a1-2f7ad3191105.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8334
x-amzn-requestid: 9a229987-a649-4d3b-ad76-d6d37b4d82b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Az9dPFv3oAMFchQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f7dc54-7877c44f45e497c50f21fa02;Sampled=0
x-amzn-remapped-date: Thu, 23 Feb 2023 21:36:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: i7Y9OarXsKFXLTe0LupSY3Bi1TFFJxpf6B46fKHpSDCIDT4EfdA29Q==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Feb 2023 22:05:48 GMT
age: 49714
etag: "9e477e320d6982a734b2d6ac0517cce246173ddf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee5ed54f-4b9c-404c-9c98-709b6bafc2a7.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee5ed54f-4b9c-404c-9c98-709b6bafc2a7.jpeg IP 34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash3c525276d82309185ba5b9a0bde424d5 96ef51351075441f83d09834292f255d94cd7911 891bcdc08687c6280b63bd7312a925185272a374179fd7ca7bf62aec32408daf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee5ed54f-4b9c-404c-9c98-709b6bafc2a7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11372
x-amzn-requestid: 77208ac4-31c7-4a46-9406-11f0a98a65ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Az9D4H6IoAMFQBg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f7dbb2-40611ab960eaadb202172abe;Sampled=0
x-amzn-remapped-date: Thu, 23 Feb 2023 21:33:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JFuOxVbDlQm-LvZunDZmam07BJtqnWnYDOR2Nubnoj66mo3BSEFQqw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Feb 2023 21:48:44 GMT
age: 50738
etag: "96ef51351075441f83d09834292f255d94cd7911"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3939c76f-380a-48de-973d-d40eb335f8d8.webp | 34.120.237.76 | 200 OK | 7.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3939c76f-380a-48de-973d-d40eb335f8d8.webp IP 34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashe85e6677fdb28086d2e66a4eb09e94c7 1c9f1f69967b2742e0acde12b5d2b6ef1a832519 b58810cad954c4f50923c9c67a47b0dba340f0e2f9056960ed543a2063ab3fbe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3939c76f-380a-48de-973d-d40eb335f8d8.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7797
x-amzn-requestid: bff8a451-dec7-4a03-801a-02f0a5500e66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Az9djGmZIAMFZeg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f7dc56-2b733a4d220422f86bba72f5;Sampled=0
x-amzn-remapped-date: Thu, 23 Feb 2023 21:36:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: cdSqmiadk-ay6TOaIgdtcNwqP5Z1AJCQ4NZgHVqXcqaAzSxIjQB6aw==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Feb 2023 22:26:22 GMT
etag: "1c9f1f69967b2742e0acde12b5d2b6ef1a832519"
content-type: image/jpeg
age: 48480
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP 23.36.76.226:0
ASN#20940 Akamai International B.V.
Hash4d4d1e65912ec6b4140b02db81975225 0c7fa4274c117bfd715ed846e548df9ebfe1e344 595799d0ee625e89d90f1eb67f9a1c6dcff45d5f331522ef876c42032b6925d9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "595799D0EE625E89D90F1EB67F9A1C6DCFF45D5F331522EF876C42032B6925D9"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19963
Expires: Fri, 24 Feb 2023 17:27:06 GMT
Date: Fri, 24 Feb 2023 11:54:23 GMT
Connection: keep-alive
|
|
| s.id/kY66E | 45.126.58.78 | 302 Found | 0 B |
IP 45.126.58.78:0
ASN#132647 Pengelola Nama Domain Internet Indonesia
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /kY66E HTTP/1.1
Host: s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Fri, 24 Feb 2023 11:54:23 GMT
content-length: 0
location: https://home.s.id/forbidden#action
cache-control: private, max-age=30
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP 23.36.76.226:0
ASN#20940 Akamai International B.V.
Hashb6e6e77922f3a795d28b9cccbf29177e 5dd1424e3809ccd68a92e63d4b0ba23eeb13ae5e 6b85a78b77c969c7b34b4b7d9aa13fa5ff7785575783ce0a08904e354cb5f96b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6B85A78B77C969C7B34B4B7D9AA13FA5FF7785575783CE0A08904E354CB5F96B"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14378
Expires: Fri, 24 Feb 2023 15:54:01 GMT
Date: Fri, 24 Feb 2023 11:54:23 GMT
Connection: keep-alive
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP 142.250.74.131:0
Hash56cd85a02d031d2f7b794f1f2cfda4eb 878162e77393da15f0a1c8bf8a83a777a6caf317 15bc2ef238d6cf940adc4a29a31bd3fa0ee1712529d89c1a2fd74fb32d5ffe5e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 11:54:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP 142.250.74.131:0
Hash56cd85a02d031d2f7b794f1f2cfda4eb 878162e77393da15f0a1c8bf8a83a777a6caf317 15bc2ef238d6cf940adc4a29a31bd3fa0ee1712529d89c1a2fd74fb32d5ffe5e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 11:54:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP 142.250.74.131:0
Hash5b0c9c420d63c63b8fe72a50bba862a2 0f826db28964f06d7c6b7fd9b263588319b64541 8db53b3c3ecadb2be99429fbf30bfc5f6214fbbdadb2c30802ffa720c137a6ad
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 11:54:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP 142.250.74.131:0
Hash295ecb42da084d2556789eada5291422 24c3605ff6984776ca77a2aa3b3b4bba4267f76f f787cdc01fe5b6c0889f133cdf9cd0e38973f4cb8515014e8a14418521af04bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 11:54:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP 142.250.74.131:0
Hash295ecb42da084d2556789eada5291422 24c3605ff6984776ca77a2aa3b3b4bba4267f76f f787cdc01fe5b6c0889f133cdf9cd0e38973f4cb8515014e8a14418521af04bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 11:54:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.googletagmanager.com/gtag/js?id=AW-10823601447 | 142.250.74.40 | 200 OK | 69 kB |
URL HTTP/2www.googletagmanager.com/gtag/js?id=AW-10823601447 IP 142.250.74.40:0
File typeASCII text, with very long lines (8284) Hash99257179bd56f23d1ca364ad4fd94017 2dbcb31793a990690824842e74016228b95bb5ea 2287ec11a786930a672e28463739951b8213e74be325a174c4a9550dba71de8c
GET /gtag/js?id=AW-10823601447 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 24 Feb 2023 11:54:24 GMT
expires: Fri, 24 Feb 2023 11:54:24 GMT
cache-control: private, max-age=900
last-modified: Fri, 24 Feb 2023 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 68888
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-LJQ0V44EV5 | 142.250.74.40 | 200 OK | 78 kB |
URL HTTP/2www.googletagmanager.com/gtag/js?id=G-LJQ0V44EV5 IP 142.250.74.40:0
File typeASCII text, with very long lines (19467) Hashc3d7813947f4ed27b3dedb2527f13087 7fe87899a56c9c13252f316fae0146793b39db01 edc3e070b24a60c127a78516f72e59da0fcb14c7d17e232d4d2e6f8f7964bee2
GET /gtag/js?id=G-LJQ0V44EV5 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 24 Feb 2023 11:54:24 GMT
expires: Fri, 24 Feb 2023 11:54:24 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77949
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP 142.250.74.131:0
Hash56cd85a02d031d2f7b794f1f2cfda4eb 878162e77393da15f0a1c8bf8a83a777a6caf317 15bc2ef238d6cf940adc4a29a31bd3fa0ee1712529d89c1a2fd74fb32d5ffe5e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 11:54:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.googleapis.com/css2?family=Lily+Script+One&family=Playfair+Display:ital,wght@0,400;0,600;1,500&display=swap | 142.250.74.106 | 200 OK | 1.1 kB |
URL HTTP/2fonts.googleapis.com/css2?family=Lily+Script+One&family=Playfair+Display:ital,wght@0,400;0,600;1,500&display=swap IP 142.250.74.106:0
Hashbcb7616b6ad1cfd84861e86bc3e1d3b8 600504a0e65b574d3f5ac1336ac73e6d38ea10d3 34130fffb5bf86f158920b006a62bed4b7110105b9f7fbb4c12a52dd767dd335
GET /css2?family=Lily+Script+One&family=Playfair+Display:ital,wght@0,400;0,600;1,500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 24 Feb 2023 11:54:24 GMT
date: Fri, 24 Feb 2023 11:54:24 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP 142.250.74.131:0
Hash18880e1808370080e86c124fc0f15477 cee3e545df43115cf8bc5b560e2c25b529219c16 8f162b3abb4870796094fcc5a6736023539c294aec20e149c97af1ab39c42337
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 11:54:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.googletagmanager.com/gtag/js?id=G-98MWVCBDD7 | 142.250.74.40 | 200 OK | 472 B |
URL HTTP/2www.googletagmanager.com/gtag/js?id=G-98MWVCBDD7 IP 142.250.74.40:0
Hash18880e1808370080e86c124fc0f15477 cee3e545df43115cf8bc5b560e2c25b529219c16 8f162b3abb4870796094fcc5a6736023539c294aec20e149c97af1ab39c42337
GET /gtag/js?id=G-98MWVCBDD7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 24 Feb 2023 11:54:24 GMT
expires: Fri, 24 Feb 2023 11:54:24 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78454
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| home.s.id/_next/static/rySOYRu7jjqPvsI7aRY4Z/_ssgManifest.js | 45.126.58.78 | 200 OK | 91 B |
URL HTTP/2home.s.id/_next/static/rySOYRu7jjqPvsI7aRY4Z/_ssgManifest.js IP 45.126.58.78:0
ASN#132647 Pengelola Nama Domain Internet Indonesia
File typeASCII text, with no line terminators Hash5ce0d2713404bd05c9502cc490488dca 552f4970f95812a42a366cf0752db5c4c4218236 ddeea69d5116852145775870dab4d86b4e909e7a02c03465efaa67d5b0f744be
GET /_next/static/rySOYRu7jjqPvsI7aRY4Z/_ssgManifest.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:24 GMT
content-type: application/javascript; charset=UTF-8
content-length: 91
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Fri, 17 Feb 2023 13:43:07 GMT
etag: W/"5b-1865f9d41f8"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| home.s.id/_next/static/rySOYRu7jjqPvsI7aRY4Z/_middlewareManifest.js | 45.126.58.78 | 200 OK | 92 B |
URL HTTP/2home.s.id/_next/static/rySOYRu7jjqPvsI7aRY4Z/_middlewareManifest.js IP 45.126.58.78:0
ASN#132647 Pengelola Nama Domain Internet Indonesia
File typeASCII text, with no line terminators Hash7c3f7e060745668041278118c0bb3d6d e639f56695b3cc30d78dce7a0084aa8299a1311a de5341313a4dc5d982ca50ae4a491e84bc5e80b0f439d87f05fc3973c1b7e59a
GET /_next/static/rySOYRu7jjqPvsI7aRY4Z/_middlewareManifest.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:24 GMT
content-type: application/javascript; charset=UTF-8
content-length: 92
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Fri, 17 Feb 2023 13:43:07 GMT
etag: W/"5c-1865f9d41f8"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 | 142.250.74.35 | 200 OK | 31 kB |
URL HTTP/2fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 IP 142.250.74.35:0
File typeWeb Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data Hashac0d2859ea5f8fd6bcb3c305c08ec184 7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7 ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://home.s.id
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Feb 2023 13:02:36 GMT
expires: Thu, 22 Feb 2024 13:02:36 GMT
cache-control: public, max-age=31536000
age: 168708
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| home.s.id/forbidden | 45.126.58.78 | 200 OK | 18 kB |
IP 45.126.58.78:0
ASN#132647 Pengelola Nama Domain Internet Indonesia
Hash7674c47698dee2103b14bdf765330366 6a279c6ba3ba788429af44a5272bfcde12e943c7 69eb954605ab682cd7d88f3e237cb75ac38be33e7f86a6d0f98a8c7c6abd005b
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /forbidden HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:23 GMT
content-type: text/html; charset=utf-8
x-powered-by: Next.js
etag: "e2c8-UdPny5tbxgaqjGIafkL0F+PzjQY"
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| home.s.id/_next/static/chunks/pages/forbidden-9c7287b02a773507.js | 45.126.58.78 | 200 OK | 46 kB |
URL HTTP/2home.s.id/_next/static/chunks/pages/forbidden-9c7287b02a773507.js IP 45.126.58.78:0
ASN#132647 Pengelola Nama Domain Internet Indonesia
Hash4d94aacf10fff60d1860ea6e1fcee6c0 5863d14d9b5d3dd07be15e495ce8ab6827b3e82a 4a2c2fdc619c526b1ccc3dea7edc08cdbb7dbcaf6966058cf330b62f1ed218a8
GET /_next/static/chunks/pages/forbidden-9c7287b02a773507.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:24 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Fri, 17 Feb 2023 13:42:37 GMT
etag: W/"e69-1865f9cccc8"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/analytics.js | 216.239.32.178 | 200 OK | 20 kB |
URL HTTP/2www.google-analytics.com/analytics.js IP 216.239.32.178:0
File typeASCII text, with very long lines (1490) Hashca7fbbfd120e3e329633044190bbf134 d17f81e03dd827554ddd207ea081fb46b3415445 847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Fri, 24 Feb 2023 11:53:25 GMT
expires: Fri, 24 Feb 2023 13:53:25 GMT
cache-control: public, max-age=7200
age: 60
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP 142.250.74.131:0
Hash4733770bf092ca1324e01dff373722a1 1524c31178714c399a4b4751744b261768c41277 26776ee98fd94df1d3adbadb39aaad24b847a689c2119c2ed62a70640f4b5b18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 11:54:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP 142.250.74.131:0
Hash5c79f7689efb3e9384d23c012fbb7459 6383d131dec112059c3bb88971dc23ce47bc98f2 4bc466ff7e5773f11ef30dba2c57bb6b76b05964622a087f0fba48686b6b85f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 11:54:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| static.zdassets.com/web_widget/latest/messenger/web-widget-messenger-a719207.js | 104.18.70.113 | 200 OK | 132 kB |
URL HTTP/2static.zdassets.com/web_widget/latest/messenger/web-widget-messenger-a719207.js IP 104.18.70.113:0
File typeASCII text, with very long lines (13861), with no line terminators Size132 kB (131777 bytes) Hash70f533892ec307bc288749a3e72fff58 83b7219f16decdc06079fab33314692b26af5223 8ef495f4d68df25cda2dde7a108a0544cd9415673ccd9996ccbdfb502fcf9595
GET /web_widget/latest/messenger/web-widget-messenger-a719207.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:25 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: F7FthXdZqu9GDWUYQSKVJ51hovmif+b+ZsMrNuQEHf0PFgcJXuf8RnsKFKVQWfrNFvl0huaDo+23+NG6/8o8BA==
x-amz-request-id: QZVFYC67FDDE53E2
x-amz-replication-status: COMPLETED
last-modified: Wed, 22 Feb 2023 06:44:17 GMT
etag: W/"40e83d111df8b809130232907142deb2"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Thu, 22 Feb 2024 06:44:16 GMT
x-amz-version-id: p9TPncU07CZbTNaM3Pz616OlucSHeQv8
cf-cache-status: HIT
age: 135573
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qGnHcWXiQ4vEg1aco3dXYE%2B3E36TqCN4G6R2KXkCeNIkiwURNrEaXmWamLDwxTJToIWKFGF0NJIlNRvWfGe9%2FDwNT3Ro6pKzlaUOLb6TIx5ddZI%2ByoCu%2Fu1hOgRCm8yAwUmuEbQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 79e801a2cb1d0b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/web_widget/latest/messenger/web-widget-3646-a719207.js | 104.18.70.113 | 200 OK | 67 kB |
URL HTTP/2static.zdassets.com/web_widget/latest/messenger/web-widget-3646-a719207.js IP 104.18.70.113:0
File typeUnicode text, UTF-8 text, with very long lines (65534), with no line terminators Hash2e55bfca80cca0257dd85357198dd5fc f37cf485d2973b74d3f5ad471469a31b6c9f3f9a 7edcb7d2fff1a648354da35fa4674808d02e0f0b023e1b0483d8921fda581de9
GET /web_widget/latest/messenger/web-widget-3646-a719207.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:25 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: ExAiCMYPomCvzE1HG0zzPigfX3bj/O8qN4uUENm17wm0KS9BP1qy5O/jmwBk+sa2oz6XtQifaSg=
x-amz-request-id: QZV0HQX2DNVTX82D
x-amz-replication-status: COMPLETED
last-modified: Wed, 22 Feb 2023 06:44:17 GMT
etag: W/"ab0b28bbdb129debde2d8b2740e7e3c2"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Thu, 22 Feb 2024 06:44:16 GMT
x-amz-version-id: CRB1Pi3u8OBxOvBkqazvlNw4YPurjnn_
cf-cache-status: HIT
age: 135573
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DnbjVwbqMdD4yy9bv4pOCKaYE62n5t2aIfvAkhk6wiRugqVTdk4a9dKiAlrBllxxvJWfqC86amdlINLxsn%2FNr%2F3Njs1tgj2EjuRm2SXwnjmiegJ3urC%2BU%2F%2B61IVYdn9jUz3W1X4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 79e801a2eb380b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/web_widget/latest/messenger/web-widget-3487-a719207.js | 104.18.70.113 | 200 OK | 3.3 kB |
URL HTTP/2static.zdassets.com/web_widget/latest/messenger/web-widget-3487-a719207.js IP 104.18.70.113:0
File typeASCII text, with very long lines (12707), with no line terminators Hash841926adee27d7c025c478a3b67b9482 fffd6ede49a5b9e08b98a789e307c9510814fc81 dbd1ae21c14c2fa9a399de4fe9aa49dd4fe90597f3d4bf931ec42d1d75b0ea93
GET /web_widget/latest/messenger/web-widget-3487-a719207.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:25 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: pFR4soeWoePOpagiiAFer0S7gR6dhrZYwInep5IB7WSmRvUPNug4lEWdqb1J9y90gO50me5m3Nw=
x-amz-request-id: QZV6874XGSF0K18V
x-amz-replication-status: COMPLETED
last-modified: Wed, 22 Feb 2023 06:44:18 GMT
etag: W/"e13cb194c094696221c50555170f09ef"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Thu, 22 Feb 2024 06:44:17 GMT
x-amz-version-id: iQBfy6dK9wcxM.kQ9MRURKBqQ06ecBIL
cf-cache-status: HIT
age: 135573
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OVBL7Y8BSS2V6fyahYxpm9NKKs8arn4QDKX8IAM21nU4e%2B3ylfeB755GiobsZrocCWYUANQLSlShma04WosERJJVJL4WtnbwOeJDM8pNmCDfHW7gmU8FHIcZJfJXcMD9LTeVmgs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 79e801a43cb10b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP 23.36.76.226:0
ASN#20940 Akamai International B.V.
Hash88e437d5e561edd133e8f7e198a44b81 28fe9d7a72b882cc90179c2eb83d488bbb03d31d 2f8a6adc563ea35cd0a3c09056029744d33049a3c2159d4174e0254b6f076d61
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2F8A6ADC563EA35CD0A3C09056029744D33049A3C2159D4174E0254B6F076D61"
Last-Modified: Wed, 22 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10266
Expires: Fri, 24 Feb 2023 14:45:31 GMT
Date: Fri, 24 Feb 2023 11:54:25 GMT
Connection: keep-alive
|
|
| static.zdassets.com/web_widget/latest/messenger/web-widget-3017-a719207.js | 104.18.70.113 | 200 OK | 2.1 kB |
URL HTTP/2static.zdassets.com/web_widget/latest/messenger/web-widget-3017-a719207.js IP 104.18.70.113:0
File typeASCII text, with very long lines (4119), with no line terminators Hash51d0fc4b2be9eff1d38f529789f9dbe4 de44eeccf7c29e6939aca4e82add4899a25d0a41 ddeed29542a1278eaa7ebdc99d3454ede2403e396153c9c66883290f899a59ed
GET /web_widget/latest/messenger/web-widget-3017-a719207.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:25 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: w3OWSVZq/Exh+SSnseJb2aZoWIw91CwRnI8I4RCIYp6wsIxlOIXJ49qi05Uai92BweGE1+BWREqkmLG/mzB20g==
x-amz-request-id: QZV1BK2YMC45SVCX
x-amz-replication-status: COMPLETED
last-modified: Wed, 22 Feb 2023 06:44:18 GMT
etag: W/"40d0e2b632d1b990738af3991e0aecb1"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Thu, 22 Feb 2024 06:44:17 GMT
x-amz-version-id: NiyP1g_DaeiBTNSI64X94Vt_1vOBIHBi
cf-cache-status: HIT
age: 135573
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c%2FB%2FYuroCwzpae26SyHgY9teZVpTEXkLYvWOa7CXxmhGcOANLGii1%2FIRiOgsKsC%2F4WfnAMxVhO5tC7ajP9QwnGbHMGcHmlHvq17FKKqT1nq6VXBIZEUjLJyU1vuOoSJS5KLsKw4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 79e801a43caf0b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP 142.250.74.131:0
Hash5c79f7689efb3e9384d23c012fbb7459 6383d131dec112059c3bb88971dc23ce47bc98f2 4bc466ff7e5773f11ef30dba2c57bb6b76b05964622a087f0fba48686b6b85f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 11:54:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP 142.250.74.131:0
Hash98e2ebdefc03d3b428acd1cf198890c7 f0abb16d9a73455a3b53756fbe22f34c19a51cc5 0e733a7a2c8c801f2dfc2f647987541a76d3237df69da029cae251df6ac95938
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 11:54:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| home.s.id/favicon.ico | 45.126.58.78 | 200 OK | 369 B |
IP 45.126.58.78:0
ASN#132647 Pengelola Nama Domain Internet Indonesia
File typePNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data Hash2137def2d03d166159c9d82347e2f023 d566cfac9656ce95ba623921422c02b7ff0b49c5 cfe37d249e5eda84e78c2c746fa7c094303fdb0288caa687c895e02a3d46c114
GET /favicon.ico HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Cookie: _ga_LJQ0V44EV5=GS1.1.1677239703.1.1.1677239704.0.0.0; _ga=GA1.1.547974949.1677239704; _ga_98MWVCBDD7=GS1.1.1677239703.1.1.1677239704.59.0.0; _gcl_au=1.1.1508841750.1677239704
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:25 GMT
content-type: image/x-icon
content-length: 369
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Sun, 06 Feb 2022 05:21:36 GMT
etag: W/"171-17ecd7afb00"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| home.s.id/_next/static/chunks/main-bba3f19427abc986.js | 45.126.58.78 | 200 OK | 29 kB |
URL HTTP/2home.s.id/_next/static/chunks/main-bba3f19427abc986.js IP 45.126.58.78:0
ASN#132647 Pengelola Nama Domain Internet Indonesia
File typeASCII text, with very long lines (65536), with no line terminators Hasha211e7c239455dc18a920971e0f06cb2 edf03b5bec464469dd86a146dbe4f45f11b97f23 7e3c26a75164c095d16b669ada518fc188e40e4c2eddad967413add411625dfd
GET /_next/static/chunks/main-bba3f19427abc986.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:24 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Fri, 17 Feb 2023 13:42:37 GMT
etag: W/"19458-1865f9cccc8"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| home.s.id/_next/static/chunks/pages/_app-f67ede36a3aa4832.js | 45.126.58.78 | 200 OK | 102 kB |
URL HTTP/2home.s.id/_next/static/chunks/pages/_app-f67ede36a3aa4832.js IP 45.126.58.78:0
ASN#132647 Pengelola Nama Domain Internet Indonesia
File typeASCII text, with very long lines (65536), with no line terminators Size102 kB (102211 bytes) Hash626f748809a5438842b382549138eb6a 2e916edfa19d31206d81a48f871657c3eb8feff6 88b42fbbb0d90692fe05610453ad9d77b4ab2fdd67a5e1fbe6331e9284e1d180
GET /_next/static/chunks/pages/_app-f67ede36a3aa4832.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:24 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Fri, 17 Feb 2023 13:42:37 GMT
etag: W/"53573-1865f9cccc8"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP 142.250.74.131:0
Hashc62a65876715f9e7cf361f64b20797e1 ea87a63809cd80575fe985de6a7baca799f027bf a197cb4ccd38b7f78bf74892665174482c5d1943a2be78d9dbe567757abb8174
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 11:54:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP 142.250.74.131:0
Hash8b071bc9b5482975fd106c517ecf32ce 779e5d086103fe19ae153f50606759302e88a5d9 ec5f6bf09033e5679826614f9fb79d296a69b16b755a428dee36548ca287ec69
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 11:54:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| region1.google-analytics.com/g/collect?v=2&tid=G-LJQ0V44EV5>m=45je32m0&_p=1823171249&cid=547974949.1677239704&ul=en-us&sr=1280x1024&_s=1&sid=1677239703&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=Forbidden%20-%20S.id&en=scroll&_fv=1&_nsi=1&_ss=1&epn.percent_scrolled=90 | 216.239.34.36 | 204 No Content | 0 B |
URL HTTP/2region1.google-analytics.com/g/collect?v=2&tid=G-LJQ0V44EV5>m=45je32m0&_p=1823171249&cid=547974949.1677239704&ul=en-us&sr=1280x1024&_s=1&sid=1677239703&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=Forbidden%20-%20S.id&en=scroll&_fv=1&_nsi=1&_ss=1&epn.percent_scrolled=90 IP 216.239.34.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-LJQ0V44EV5>m=45je32m0&_p=1823171249&cid=547974949.1677239704&ul=en-us&sr=1280x1024&_s=1&sid=1677239703&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=Forbidden%20-%20S.id&en=scroll&_fv=1&_nsi=1&_ss=1&epn.percent_scrolled=90 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://home.s.id
date: Fri, 24 Feb 2023 11:54:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-98MWVCBDD7>m=45je32m0&_p=1823171249&_gaz=1&cid=547974949.1677239704&ul=en-us&sr=1280x1024&_s=1&sid=1677239703&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=Forbidden%20-%20S.id&en=scroll&_fv=1&_ss=1&epn.percent_scrolled=90 | 216.239.32.36 | 204 No Content | 0 B |
URL HTTP/2region1.analytics.google.com/g/collect?v=2&tid=G-98MWVCBDD7>m=45je32m0&_p=1823171249&_gaz=1&cid=547974949.1677239704&ul=en-us&sr=1280x1024&_s=1&sid=1677239703&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=Forbidden%20-%20S.id&en=scroll&_fv=1&_ss=1&epn.percent_scrolled=90 IP 216.239.32.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-98MWVCBDD7>m=45je32m0&_p=1823171249&_gaz=1&cid=547974949.1677239704&ul=en-us&sr=1280x1024&_s=1&sid=1677239703&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=Forbidden%20-%20S.id&en=scroll&_fv=1&_ss=1&epn.percent_scrolled=90 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://home.s.id
date: Fri, 24 Feb 2023 11:54:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| stats.g.doubleclick.net/g/collect?v=2&tid=G-98MWVCBDD7&cid=547974949.1677239704>m=45je32m0&aip=1 | 64.233.165.155 | 204 No Content | 0 B |
URL HTTP/2stats.g.doubleclick.net/g/collect?v=2&tid=G-98MWVCBDD7&cid=547974949.1677239704>m=45je32m0&aip=1 IP 64.233.165.155:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-98MWVCBDD7&cid=547974949.1677239704>m=45je32m0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://home.s.id
date: Fri, 24 Feb 2023 11:54:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.com/pagead/1p-user-list/10823601447/?random=1677239704465&cv=11&fst=1677236400000&bg=ffffff&guid=ON&async=1>m=45be32m0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fhome.s.id%2Fforbidden&tiba=Forbidden%20-%20S.id&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1557301814&rmt_tld=0&ipr=y | 216.58.211.4 | 200 OK | 42 B |
URL HTTP/2www.google.com/pagead/1p-user-list/10823601447/?random=1677239704465&cv=11&fst=1677236400000&bg=ffffff&guid=ON&async=1>m=45be32m0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fhome.s.id%2Fforbidden&tiba=Forbidden%20-%20S.id&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1557301814&rmt_tld=0&ipr=y IP 216.58.211.4:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10823601447/?random=1677239704465&cv=11&fst=1677236400000&bg=ffffff&guid=ON&async=1>m=45be32m0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fhome.s.id%2Fforbidden&tiba=Forbidden%20-%20S.id&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1557301814&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 24 Feb 2023 11:54:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP 142.250.74.131:0
Hash8b071bc9b5482975fd106c517ecf32ce 779e5d086103fe19ae153f50606759302e88a5d9 ec5f6bf09033e5679826614f9fb79d296a69b16b755a428dee36548ca287ec69
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 11:54:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP 142.250.74.131:0
Hashd5a81909f9ba52a4b5b4beca7189f10a 216a773aef7239d68c979f6c24013a31f085c779 79799853ac50d2c9e10b8cfab4a57150b087403209006e166af67164c2630de6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 11:54:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| sdotid.zendesk.com/embeddable_blip?type=pageView&data=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 | 104.16.51.111 | 200 OK | 0 B |
URL HTTP/2sdotid.zendesk.com/embeddable_blip?type=pageView&data=eyJjaGFubmVsIjoid2ViX21lc3NlbmdlciIsInBhZ2VWaWV3Ijp7InRpbWUiOjQ1LCJsb2FkVGltZSI6MjAsIm5hdmlnYXRvckxhbmd1YWdlIjoiZW4tVVMiLCJwYWdlVGl0bGUiOiJGb3JiaWRkZW4gLSBTLmlkIiwidXNlckFnZW50IjoiTW96aWxsYS81LjAgKFdpbmRvd3MgTlQgMTAuMDsgV2luNjQ7IHg2NDsgcnY6MTA1LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvMTA1LjAiLCJpc01vYmlsZSI6ZmFsc2UsImlzUmVzcG9uc2l2ZSI6dHJ1ZSwidmlld3BvcnRNZXRhIjoid2lkdGg9ZGV2aWNlLXdpZHRoIiwiaGVscENlbnRlckRlZHVwIjpmYWxzZSwicmVmZXJyZXIiOiJodHRwczovL2hvbWUucy5pZC9mb3JiaWRkZW4ifSwiYnVpZCI6IjY2YzA5ZjJiNWIzZTQwOWU5ZWQ2MjE3ZWUxYzk3OTllIiwic3VpZCI6IjkwMWVlNDE0OTg2YTQzNjE4MTc3ZDc5MjkwYTRmZGRmIiwidmVyc2lvbiI6ImE3MTkyMDciLCJ0aW1lc3RhbXAiOiIyMDIzLTAyLTI0VDExOjU1OjA0Ljc2MVoiLCJ1cmwiOiJodHRwczovL2hvbWUucy5pZC9mb3JiaWRkZW4jYWN0aW9uIn0= IP 104.16.51.111:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embeddable_blip?type=pageView&data=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 HTTP/1.1
Host: sdotid.zendesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://home.s.id/
Origin: https://home.s.id
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:25 GMT
content-length: 0
access-control-allow-origin: *
vary: Origin, Accept-Encoding
x-zendesk-zorg: yes
x-request-id: 79e801a45b8cb500-ULN
last-modified: Fri, 24 Feb 2023 11:54:25 GMT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RDBuObJG513r7IFAgQZZHWNW6rFN6GnxQYaK4h1SmIydnVB9xZP8bAsUgpBMwV%2FdF7GTFlk9r0MYMvabA8qL4CqTcjakKvsNljGy%2BHCQRWiLP0N34vwh1Q%2BMebkp%2F691qF5liQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
set-cookie: __cfruid=a68a26bda661ca0fa5a1e7dca4f21e3bfff7844a-1677239665; path=/; domain=.sdotid.zendesk.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 79e801a45b8cb500-OSL
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/web_widget/latest/messenger/web-widget-1707-a719207.js | 104.18.70.113 | 200 OK | 8.5 kB |
URL HTTP/2static.zdassets.com/web_widget/latest/messenger/web-widget-1707-a719207.js IP 104.18.70.113:0
File typeASCII text, with very long lines (24853), with no line terminators Hash19364fd0d81a4df5a7d0af389160de32 47a80774b01720ecd267e330708c87eae86ffb82 6f332b2f749180ba0f0e460dedb5ce26fb82aef271fbd212347557fca0587ce8
GET /web_widget/latest/messenger/web-widget-1707-a719207.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:25 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: KMLPG49GDm/vJOaDwlFUgTQ1J2GaAvosKdHpWVA6bAqICy8r5vacqwjzm/PQ23Trt4PvSWGmbrVZOHuMllvQHQ==
x-amz-request-id: QZVDQEDKJ10BX4F5
x-amz-replication-status: COMPLETED
last-modified: Wed, 22 Feb 2023 06:44:18 GMT
etag: W/"ae451f428ab96456490147d8abff0d53"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Thu, 22 Feb 2024 06:44:17 GMT
x-amz-version-id: mX5oxAEGCbdkcl2OuHg0s8hKG_I0cDcM
cf-cache-status: HIT
age: 135573
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sssJkub%2FhYGngYFtFXGj09yw1cWs93MT07hqQvfGgEEAjnXUzu27D2%2BYJxruT7kc3MCMFvl9ch2llleNQYUiMXl%2F3TBejPKMu5mbOTNpkhwUjTqYRE9SU9AHhRe8PWtZTqukFsI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 79e801a42caa0b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| api.s.id/api/user/me | 45.126.58.78 | 401 Unauthorized | 58 B |
IP 45.126.58.78:0
ASN#132647 Pengelola Nama Domain Internet Indonesia
File typeJSON data\012- , ASCII text, with no line terminators Hashdc6337924fcba32afbaef2dc7a71ffcf 1bb7b761c6bf8bc117eddd9525d61844fa676190 4bc6fcf8abb0feb0a50bc17148052beafa7b3ac9aeb9e20ecf183791f6a9c50b
GET /api/user/me HTTP/1.1
Host: api.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-RPC-Lang: en
DS: 1677239704,i3epkl,af0234c730d2ffb87b649ec0acb0205f
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 401 Unauthorized
date: Fri, 24 Feb 2023 11:54:25 GMT
content-type: application/json
content-length: 58
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://home.s.id
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, accept, origin, Cache-Control, X-Requested-With, X-RPC-Lang, DS
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-ratelimit-limit: 30
x-ratelimit-remaining: 29
x-ratelimit-reset: 30
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP 23.36.76.226:0
ASN#20940 Akamai International B.V.
Hash024715461e9495f6fe034cd25c5144a9 080a410704f453c850e02e4316c8ab4064a70e68 412d11f261d94a5c3e6ebe7053335a7d3f900847387ece1674a1ecb96284a8bb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "412D11F261D94A5C3E6EBE7053335A7D3F900847387ECE1674A1ECB96284A8BB"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14092
Expires: Fri, 24 Feb 2023 15:49:19 GMT
Date: Fri, 24 Feb 2023 11:54:27 GMT
Connection: keep-alive
|
|
| fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2 | 142.250.74.35 | 200 OK | 48 kB |
URL HTTP/2fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2 IP 142.250.74.35:0
File typeWeb Open Font Format (Version 2), TrueType, length 47728, version 1.0\012- data Hashb1581ddd77372ceb06eb14adfd1bea07 1a3b0fc96fa73b808aa1f91f122a3c9bdcf93ee8 97e82d8eac8d106b28abf1b716982c40c06fffe49cc2f34cd1c299266745ef73
GET /s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://blog.s.id
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47728
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Feb 2023 13:11:50 GMT
expires: Thu, 22 Feb 2024 13:11:50 GMT
cache-control: public, max-age=31536000
age: 168158
last-modified: Tue, 23 Aug 2022 17:55:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| blog.s.id/_next/static/dp2sfPOAz46ShJw6wpdZU/_ssgManifest.js | 45.126.58.78 | 200 OK | 77 B |
URL HTTP/2blog.s.id/_next/static/dp2sfPOAz46ShJw6wpdZU/_ssgManifest.js IP 45.126.58.78:0
ASN#132647 Pengelola Nama Domain Internet Indonesia
File typeASCII text, with no line terminators Hashb6652df95db52feb4daf4eca35380933 65451d110137761b318c82d9071c042db80c4036 6f5b4aa00d2f8d6aed9935b471806bf7acef464d0c1d390260e5fe27f800c67e
GET /_next/static/dp2sfPOAz46ShJw6wpdZU/_ssgManifest.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1677239703.1.1.1677239707.0.0.0; _ga=GA1.2.547974949.1677239704; _ga_98MWVCBDD7=GS1.1.1677239703.1.1.1677239707.56.0.0; _gcl_au=1.1.1508841750.1677239704; _gid=GA1.2.929232827.1677239705; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:28 GMT
content-type: application/javascript; charset=UTF-8
content-length: 77
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Fri, 17 Feb 2023 13:41:24 GMT
etag: W/"4d-1865f9bafa0"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| blog.s.id/_next/static/dp2sfPOAz46ShJw6wpdZU/_middlewareManifest.js | 45.126.58.78 | 200 OK | 92 B |
URL HTTP/2blog.s.id/_next/static/dp2sfPOAz46ShJw6wpdZU/_middlewareManifest.js IP 45.126.58.78:0
ASN#132647 Pengelola Nama Domain Internet Indonesia
File typeASCII text, with no line terminators Hash7c3f7e060745668041278118c0bb3d6d e639f56695b3cc30d78dce7a0084aa8299a1311a de5341313a4dc5d982ca50ae4a491e84bc5e80b0f439d87f05fc3973c1b7e59a
GET /_next/static/dp2sfPOAz46ShJw6wpdZU/_middlewareManifest.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1677239703.1.1.1677239707.0.0.0; _ga=GA1.2.547974949.1677239704; _ga_98MWVCBDD7=GS1.1.1677239703.1.1.1677239707.56.0.0; _gcl_au=1.1.1508841750.1677239704; _gid=GA1.2.929232827.1677239705; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:28 GMT
content-type: application/javascript; charset=UTF-8
content-length: 92
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Fri, 17 Feb 2023 13:41:45 GMT
etag: W/"5c-1865f9c01a8"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| blog.s.id/_next/static/chunks/main-42bee57ba94e9a13.js | 45.126.58.78 | 200 OK | 107 kB |
URL HTTP/2blog.s.id/_next/static/chunks/main-42bee57ba94e9a13.js IP 45.126.58.78:0
ASN#132647 Pengelola Nama Domain Internet Indonesia
Size107 kB (106814 bytes) Hash56aecf81e7ae6b7de667947fa00857d5 dd51623422e107fa1df56782a8ed981059ea14c9 f9abfea626f45cfdabc9fbbcff5a3543a24d69ae9fcaf831246a5f568f41528a
GET /_next/static/chunks/main-42bee57ba94e9a13.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1677239703.1.1.1677239707.0.0.0; _ga=GA1.2.547974949.1677239704; _ga_98MWVCBDD7=GS1.1.1677239703.1.1.1677239707.56.0.0; _gcl_au=1.1.1508841750.1677239704; _gid=GA1.2.929232827.1677239705; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:28 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Fri, 17 Feb 2023 13:41:24 GMT
etag: W/"193b5-1865f9bafa0"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/web_widget/latest/messenger/web-widget-4852-a719207.js | 104.18.70.113 | 200 OK | 106 kB |
URL HTTP/2static.zdassets.com/web_widget/latest/messenger/web-widget-4852-a719207.js IP 104.18.70.113:0
File typeASCII text, with very long lines (65307) Size106 kB (105697 bytes) Hash0c11900a8ac559f6fe782151afce373b e26051c11af6f4e2b7b498be04670caf990dadb0 584f296b3d5d49eacffb81a6c144ffd7398feb27c3ae2d6b7b8e19a900690a40
GET /web_widget/latest/messenger/web-widget-4852-a719207.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:25 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: aI3jFB36K3E2sVPjjSyuglW8deCPI9Hwqf51BqFFdlx/aRR18Ll4fVMqqMwTrctBlDlBKIGdobDLt15IQNY/5w==
x-amz-request-id: QZVA372EH92BWQM7
x-amz-replication-status: COMPLETED
last-modified: Wed, 22 Feb 2023 06:44:18 GMT
etag: W/"764679dd09fde5fad327b4eeb283bb68"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Thu, 22 Feb 2024 06:44:17 GMT
x-amz-version-id: mQj3NdIQiocuBYZmbX...33eZm2SHfqd
cf-cache-status: HIT
age: 135573
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Jy7H5muGRB3Ja63px7%2FSG%2FeJ7pO%2FyWHWYr2FZ74csLYB23h%2FLdtAozjgO5saBB%2FLe1THGKguuSa2Frw54CmsMoYC2YCFcT3K8kCbPsft26FHTw%2FLVYUJXIEeVjJx6sD%2B2dqlKmM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 79e801a42ca80b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| blog.s.id/favicon.ico | 45.126.58.78 | 200 OK | 369 B |
IP 45.126.58.78:0
ASN#132647 Pengelola Nama Domain Internet Indonesia
File typePNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data Hash2137def2d03d166159c9d82347e2f023 d566cfac9656ce95ba623921422c02b7ff0b49c5 cfe37d249e5eda84e78c2c746fa7c094303fdb0288caa687c895e02a3d46c114
GET /favicon.ico HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1677239703.1.1.1677239707.0.0.0; _ga=GA1.1.547974949.1677239704; _ga_98MWVCBDD7=GS1.1.1677239703.1.1.1677239707.56.0.0; _gcl_au=1.1.1508841750.1677239704; _gid=GA1.2.929232827.1677239705; _gat_gtag_UA_225238330_2=1; _ga_LBWQJM5WLF=GS1.1.1677239708.1.0.1677239708.60.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:29 GMT
content-type: image/x-icon
content-length: 369
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Fri, 04 Mar 2022 07:03:55 GMT
etag: W/"171-17f53bdff78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/ekr/snippet.js?key=1dc98855-fcfe-49a8-9ac6-f3d16b24538f | 104.18.70.113 | 200 OK | 130 kB |
URL HTTP/2static.zdassets.com/ekr/snippet.js?key=1dc98855-fcfe-49a8-9ac6-f3d16b24538f IP 104.18.70.113:0
File typeASCII text, with very long lines (23416), with no line terminators Size130 kB (129508 bytes) Hash5152c6b4a33a3c366aeb96efd916c0d2 d12facea3064ba073b08ef08fe68193a3406b48c 94503414610e7f79b1fb4d2ae55e1622fb130b0fc1bf21192d60b4cfa3dbd907
GET /ekr/snippet.js?key=1dc98855-fcfe-49a8-9ac6-f3d16b24538f HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:28 GMT
content-type: application/javascript
x-amz-id-2: 5z7bD7a2QjVU1p1mrZWml9YWeVjzwcenMkrZT2XFwGEbivWxhQHKv8YIyg15kSn8VKXTH+0WNVI=
x-amz-request-id: 482HGH4TBZ853WM8
x-amz-replication-status: COMPLETED
last-modified: Thu, 28 Jul 2022 23:44:02 GMT
etag: W/"5cae6ce528dce0c327b2bcbaad459fdb"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600, s-maxage=60
x-amz-version-id: TCAqq4sghBBBAAXd3MLZ8Fy8XIds..vO
cf-cache-status: HIT
age: 42
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GM0SzABqMML5wI24fiePpPOPlrpixhWHvEDtlO8268SVUNk9da4zqm06zuBbLvknIbWsQImrgHYVV%2FdO39vhktPw0XjjhINvZnP3weEF8EWVEMlJqRrxC3TFGxYw%2F8RL2bieZIc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 79e801ba5ac50b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP 142.250.74.131:0
Hashd0a313a6da9c628b1ee7cd93d7b2ef54 201f922c731f1725f8f6ebe2d821c0946481c9ac a7c5b775f187a0b796bcd3e2ad4a881adb14bd0c06eaf0c5fa169f3cc57a7466
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 11:54:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| partner.googleadservices.com/gampad/cookie.js?domain=blog.s.id&callback=_gfp_s_&client=ca-pub-2742216534640545 | 142.250.74.34 | 200 OK | 247 B |
URL HTTP/2partner.googleadservices.com/gampad/cookie.js?domain=blog.s.id&callback=_gfp_s_&client=ca-pub-2742216534640545 IP 142.250.74.34:0
File typeASCII text, with very long lines (375), with no line terminators Hash7149dd420f92b0e4696a02b06ab6828c b96ec2beeba5fbc25e834f7cd8c12563fa006c4c 5f54bcb0054d3f26d32b1541cf671f1ec935dcf661a672ab3edb5ecaf911ddde
GET /gampad/cookie.js?domain=blog.s.id&callback=_gfp_s_&client=ca-pub-2742216534640545 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 24 Feb 2023 11:54:29 GMT
server: cafe
cache-control: private
content-length: 247
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP 142.250.74.131:0
Hashd5a81909f9ba52a4b5b4beca7189f10a 216a773aef7239d68c979f6c24013a31f085c779 79799853ac50d2c9e10b8cfab4a57150b087403209006e166af67164c2630de6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 11:54:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| adservice.google.no/adsid/integrator.js?domain=blog.s.id | 216.58.211.2 | 200 OK | 100 B |
URL HTTP/2adservice.google.no/adsid/integrator.js?domain=blog.s.id IP 216.58.211.2:0
File typeASCII text, with no line terminators Hash917951a58be8c6c6f3680159550ba3c2 21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4 cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=blog.s.id HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 24 Feb 2023 11:54:29 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| blog.s.id/_next/static/chunks/769-42c553aad5ec5871.js | 45.126.58.78 | 200 OK | 66 kB |
URL HTTP/2blog.s.id/_next/static/chunks/769-42c553aad5ec5871.js IP 45.126.58.78:0
ASN#132647 Pengelola Nama Domain Internet Indonesia
File typeASCII text, with very long lines (65536), with no line terminators Hashbd766004a7d8f37cfb232c1e212c0a8e 2c976de6f1e178a0c679fb1a8db666ff9e1ed314 65fb5c1f7980c4563315f002743ad53dd0e283e91f1086fb7e8c7cb8c58f10fe
GET /_next/static/chunks/769-42c553aad5ec5871.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1677239703.1.1.1677239707.0.0.0; _ga=GA1.2.547974949.1677239704; _ga_98MWVCBDD7=GS1.1.1677239703.1.1.1677239707.56.0.0; _gcl_au=1.1.1508841750.1677239704; _gid=GA1.2.929232827.1677239705; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:28 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Fri, 17 Feb 2023 13:41:24 GMT
etag: W/"37ba9-1865f9bafa0"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP 93.184.220.29:0
Hash20967ad06cd56dd8221072b08e5ceadc 0e0f844c126b7f9b6cda0cdfaeb5d4b49f6e8ce8 33c2aa08901b18afbc17bb16c577b24aaef0ed91c548e5d04367fc2948a2beeb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4978
Cache-Control: max-age=155107
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 11:54:29 GMT
Etag: "63f84ce6-118"
Expires: Sun, 26 Feb 2023 06:59:36 GMT
Last-Modified: Fri, 24 Feb 2023 05:36:38 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 280
|
|
| adservice.google.com/adsid/integrator.js?domain=blog.s.id | 142.250.74.130 | 200 OK | 100 B |
URL HTTP/2adservice.google.com/adsid/integrator.js?domain=blog.s.id IP 142.250.74.130:0
File typeASCII text, with no line terminators Hash917951a58be8c6c6f3680159550ba3c2 21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4 cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=blog.s.id HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 24 Feb 2023 11:54:29 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP 142.250.74.131:0
Hashd0a313a6da9c628b1ee7cd93d7b2ef54 201f922c731f1725f8f6ebe2d821c0946481c9ac a7c5b775f187a0b796bcd3e2ad4a881adb14bd0c06eaf0c5fa169f3cc57a7466
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 11:54:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| home.s.id/_next/static/chunks/webpack-fbea13f4df053749.js | 45.126.58.78 | 200 OK | 0 B |
URL HTTP/2home.s.id/_next/static/chunks/webpack-fbea13f4df053749.js IP 45.126.58.78:0
ASN#132647 Pengelola Nama Domain Internet Indonesia
GET /_next/static/chunks/webpack-fbea13f4df053749.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:24 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Fri, 17 Feb 2023 13:42:37 GMT
etag: W/"14fc-1865f9cccc8"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/web_widget/latest/messenger/web-widget-4327-a719207.js | 104.18.70.113 | 200 OK | 0 B |
URL HTTP/2static.zdassets.com/web_widget/latest/messenger/web-widget-4327-a719207.js IP 104.18.70.113:0
GET /web_widget/latest/messenger/web-widget-4327-a719207.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:25 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: 0CrteBI0mGxIAO5CxWPf4Nq3j8hJstY7h+3T5ldnuI2D2msjpb5tkImacQ3BT8xXixUEO2QFl3I=
x-amz-request-id: QZVDGN3K1P43626W
x-amz-replication-status: COMPLETED
last-modified: Wed, 22 Feb 2023 06:44:18 GMT
etag: W/"4f308159ef99e06f6c11026c8ea99775"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Thu, 22 Feb 2024 06:44:17 GMT
x-amz-version-id: RHKweyowU3RQ5szkB066c6MjmFvOpLIR
cf-cache-status: HIT
age: 135573
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K%2F0LhL%2FkqBAgpKZmHAMaiMezG8atp%2F%2Fc7UIuWDXo9nQYP6kJ%2BLyi3sha%2B6EUYw7%2B9QoQ9TBt%2FahXefOPE6ClfSYaRxXa5JvPQ7OP57CXttpUmgtcBSWz3g9JAa9aADIH2hHln%2FU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 79e801a43cb40b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| blog.s.id/_next/static/dp2sfPOAz46ShJw6wpdZU/_buildManifest.js | 45.126.58.78 | 200 OK | 0 B |
URL HTTP/2blog.s.id/_next/static/dp2sfPOAz46ShJw6wpdZU/_buildManifest.js IP 45.126.58.78:0
ASN#132647 Pengelola Nama Domain Internet Indonesia
GET /_next/static/dp2sfPOAz46ShJw6wpdZU/_buildManifest.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1677239703.1.1.1677239707.0.0.0; _ga=GA1.2.547974949.1677239704; _ga_98MWVCBDD7=GS1.1.1677239703.1.1.1677239707.56.0.0; _gcl_au=1.1.1508841750.1677239704; _gid=GA1.2.929232827.1677239705; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:28 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Fri, 17 Feb 2023 13:41:24 GMT
etag: W/"40f-1865f9bafa0"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect | 45.126.58.78 | 200 OK | 0 B |
URL HTTP/2blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect IP 45.126.58.78:0
ASN#132647 Pengelola Nama Domain Internet Indonesia
GET /post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Cookie: _ga_LJQ0V44EV5=GS1.1.1677239703.1.1.1677239704.0.0.0; _ga=GA1.2.547974949.1677239704; _ga_98MWVCBDD7=GS1.1.1677239703.1.1.1677239704.59.0.0; _gcl_au=1.1.1508841750.1677239704; _gid=GA1.2.929232827.1677239705; _gat_gtag_UA_225238330_2=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:27 GMT
content-type: text/html; charset=utf-8
x-powered-by: Next.js
etag: "10101-/kT+nBN2k4taxtQNw47//SmEB64"
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| blog.s.id/_next/static/chunks/471-dd22a53f3091be72.js | 45.126.58.78 | 200 OK | 0 B |
URL HTTP/2blog.s.id/_next/static/chunks/471-dd22a53f3091be72.js IP 45.126.58.78:0
ASN#132647 Pengelola Nama Domain Internet Indonesia
GET /_next/static/chunks/471-dd22a53f3091be72.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1677239703.1.1.1677239707.0.0.0; _ga=GA1.2.547974949.1677239704; _ga_98MWVCBDD7=GS1.1.1677239703.1.1.1677239707.56.0.0; _gcl_au=1.1.1508841750.1677239704; _gid=GA1.2.929232827.1677239705; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:28 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Fri, 17 Feb 2023 13:41:24 GMT
etag: W/"1ed84-1865f9bafa0"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| home.s.id/images/errors/403.svg | 45.126.58.78 | 200 OK | 0 B |
URL HTTP/2home.s.id/images/errors/403.svg IP 45.126.58.78:0
ASN#132647 Pengelola Nama Domain Internet Indonesia
GET /images/errors/403.svg HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:24 GMT
content-type: image/svg+xml
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Tue, 27 Dec 2022 03:47:41 GMT
etag: W/"1136-18551b16f48"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| blog.s.id/_next/static/css/b699486c77acfe86.css | 45.126.58.78 | 200 OK | 0 B |
URL HTTP/2blog.s.id/_next/static/css/b699486c77acfe86.css IP 45.126.58.78:0
ASN#132647 Pengelola Nama Domain Internet Indonesia
GET /_next/static/css/b699486c77acfe86.css HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1677239703.1.1.1677239707.0.0.0; _ga=GA1.2.547974949.1677239704; _ga_98MWVCBDD7=GS1.1.1677239703.1.1.1677239707.56.0.0; _gcl_au=1.1.1508841750.1677239704; _gid=GA1.2.929232827.1677239705; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:27 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Fri, 17 Feb 2023 13:41:24 GMT
etag: W/"17e2b-1865f9bafa0"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| home.s.id/_next/static/rySOYRu7jjqPvsI7aRY4Z/_buildManifest.js | 45.126.58.78 | 200 OK | 0 B |
URL HTTP/2home.s.id/_next/static/rySOYRu7jjqPvsI7aRY4Z/_buildManifest.js IP 45.126.58.78:0
ASN#132647 Pengelola Nama Domain Internet Indonesia
GET /_next/static/rySOYRu7jjqPvsI7aRY4Z/_buildManifest.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:24 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Fri, 17 Feb 2023 13:42:37 GMT
etag: W/"227e-1865f9cccc8"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/web_widget/latest/web-widget-framework-c51f107a0ca3e84336b0.js | 104.18.70.113 | 200 OK | 0 B |
URL HTTP/2static.zdassets.com/web_widget/latest/web-widget-framework-c51f107a0ca3e84336b0.js IP 104.18.70.113:0
GET /web_widget/latest/web-widget-framework-c51f107a0ca3e84336b0.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:24 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: 7RO63ZJPrd5Ex2jVwPO2lxfKvQIdTSyau7E7t6+0Uy05DSZ1wKcCJNrZzJfwxMCu+VysWkijt04=
x-amz-request-id: BYP7S2W0DJ0TAHYM
x-amz-replication-status: COMPLETED
last-modified: Wed, 22 Feb 2023 06:38:58 GMT
etag: W/"0932241a2c253c61368888cafa81b69a"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Thu, 22 Feb 2024 06:38:56 GMT
x-amz-version-id: nsG.1b0looRW8Au6Kh.wWMVQtQJ4Vh1s
cf-cache-status: HIT
age: 135573
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xGqGHfNvE8hML344VJ5CffYilcjqN7yEQhNsnZH8eqWuG92y7Tvez%2B1RHN%2BPrQEx1yW6XLTbHdP8zGN6VWaUezRj79eaEQ4tkfSdTn7WW%2BXuaRv8I1yvlVPYncMF5DwYoLYErIc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 79e801a008a70b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/ekr/snippet.js?key=4b27aa03-d3da-43eb-8382-660c054fbc9d | 104.18.70.113 | 200 OK | 0 B |
URL HTTP/2static.zdassets.com/ekr/snippet.js?key=4b27aa03-d3da-43eb-8382-660c054fbc9d IP 104.18.70.113:0
GET /ekr/snippet.js?key=4b27aa03-d3da-43eb-8382-660c054fbc9d HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:24 GMT
content-type: application/javascript
x-amz-id-2: 5z7bD7a2QjVU1p1mrZWml9YWeVjzwcenMkrZT2XFwGEbivWxhQHKv8YIyg15kSn8VKXTH+0WNVI=
x-amz-request-id: 482HGH4TBZ853WM8
x-amz-replication-status: COMPLETED
last-modified: Thu, 28 Jul 2022 23:44:02 GMT
etag: W/"5cae6ce528dce0c327b2bcbaad459fdb"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600, s-maxage=60
x-amz-version-id: TCAqq4sghBBBAAXd3MLZ8Fy8XIds..vO
cf-cache-status: HIT
age: 38
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ANaESLkxzhl4uC2o%2FL6fzNbXFlssKq3uJ3hdJOouWUD48JNs5IZj%2FOgYOTUYTRNUI3iHPmIPcZqI8z3eX5BNhv4o5c4bOnntGQAtgVkuke1JEoxtaPovMWOBFbH2kb4ZBcLoiUc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 79e8019d4d820b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| blog.s.id/_next/static/chunks/framework-1d78b5852a861806.js | 45.126.58.78 | 200 OK | 0 B |
URL HTTP/2blog.s.id/_next/static/chunks/framework-1d78b5852a861806.js IP 45.126.58.78:0
ASN#132647 Pengelola Nama Domain Internet Indonesia
GET /_next/static/chunks/framework-1d78b5852a861806.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1677239703.1.1.1677239707.0.0.0; _ga=GA1.2.547974949.1677239704; _ga_98MWVCBDD7=GS1.1.1677239703.1.1.1677239707.56.0.0; _gcl_au=1.1.1508841750.1677239704; _gid=GA1.2.929232827.1677239705; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:28 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Fri, 17 Feb 2023 13:41:24 GMT
etag: W/"1fbbe-1865f9bafa0"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| blog.s.id/_next/static/chunks/729-4c50bfe9aa8151aa.js | 45.126.58.78 | 200 OK | 0 B |
URL HTTP/2blog.s.id/_next/static/chunks/729-4c50bfe9aa8151aa.js IP 45.126.58.78:0
ASN#132647 Pengelola Nama Domain Internet Indonesia
GET /_next/static/chunks/729-4c50bfe9aa8151aa.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1677239703.1.1.1677239707.0.0.0; _ga=GA1.2.547974949.1677239704; _ga_98MWVCBDD7=GS1.1.1677239703.1.1.1677239707.56.0.0; _gcl_au=1.1.1508841750.1677239704; _gid=GA1.2.929232827.1677239705; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:28 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Fri, 17 Feb 2023 13:41:24 GMT
etag: W/"4bf3-1865f9bafa0"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| home.s.id/_next/static/css/3450dab3df53260d.css | 45.126.58.78 | 200 OK | 0 B |
URL HTTP/2home.s.id/_next/static/css/3450dab3df53260d.css IP 45.126.58.78:0
ASN#132647 Pengelola Nama Domain Internet Indonesia
GET /_next/static/css/3450dab3df53260d.css HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:24 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Fri, 17 Feb 2023 13:42:37 GMT
etag: W/"1cbf5-1865f9cccc8"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Montserrat:wght@400;500;600;700;800&family=Work+Sans:wght@400;500;600;700&display=swap | 142.250.74.106 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css2?family=Montserrat:wght@400;500;600;700;800&family=Work+Sans:wght@400;500;600;700&display=swap IP 142.250.74.106:0
GET /css2?family=Montserrat:wght@400;500;600;700;800&family=Work+Sans:wght@400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 24 Feb 2023 11:54:24 GMT
date: Fri, 24 Feb 2023 11:54:24 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| blog.s.id/_next/static/chunks/30846afe-cfd475acf1f13fd6.js | 45.126.58.78 | 200 OK | 0 B |
URL HTTP/2blog.s.id/_next/static/chunks/30846afe-cfd475acf1f13fd6.js IP 45.126.58.78:0
ASN#132647 Pengelola Nama Domain Internet Indonesia
GET /_next/static/chunks/30846afe-cfd475acf1f13fd6.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1677239703.1.1.1677239707.0.0.0; _ga=GA1.2.547974949.1677239704; _ga_98MWVCBDD7=GS1.1.1677239703.1.1.1677239707.56.0.0; _gcl_au=1.1.1508841750.1677239704; _gid=GA1.2.929232827.1677239705; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:28 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Fri, 17 Feb 2023 13:41:24 GMT
etag: W/"a05-1865f9bafa0"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| sdotid.zendesk.com/embeddable/config | 104.16.51.111 | 200 OK | 0 B |
URL HTTP/2sdotid.zendesk.com/embeddable/config IP 104.16.51.111:0
GET /embeddable/config HTTP/1.1
Host: sdotid.zendesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://home.s.id/
Origin: https://home.s.id
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:25 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-expose-headers:
access-control-max-age: 7200
cache-control: public, max-age=60, stale-while-revalidate=600, stale-if-error=3600
x-zendesk-origin-server: embeddable-app-server-578794dcf6-cdqkl
x-request-id: 79e801a09e5ab500-ULN
x-runtime: 0.002189
vary: Origin, Accept-Encoding
x-cached: MISS
last-modified: Fri, 24 Feb 2023 10:44:05 GMT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NFV%2F98oFB6WZIq2%2FirXc25mOm5Aku2JaDwPvNYa4%2Bm8pMp%2Brv9kVaVsah2%2Fnq40rxA1VaHyJWAiw8TueRybK2wmZ0hwdcLZ%2BcJpl%2F%2BIg96jqoXePBlvy%2BZMWZ%2BCh6k82D861Mg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
set-cookie: __cfruid=a68a26bda661ca0fa5a1e7dca4f21e3bfff7844a-1677239665; path=/; domain=.sdotid.zendesk.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 79e801a09e5ab500-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/web_widget/latest/messenger/web-widget-6940-a719207.js | 104.18.70.113 | 200 OK | 0 B |
URL HTTP/2static.zdassets.com/web_widget/latest/messenger/web-widget-6940-a719207.js IP 104.18.70.113:0
GET /web_widget/latest/messenger/web-widget-6940-a719207.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:25 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: O5wVLV4ePf103hy1saUDhf6TeVO6d/pWNKtuilOqIrEtm2G3lKTpcHTy0GWQMxDcaRhERLCC/KI=
x-amz-request-id: QZV18QW7YDGD57CV
x-amz-replication-status: COMPLETED
last-modified: Wed, 22 Feb 2023 06:44:17 GMT
etag: W/"8f0468a9cb56a32ae09095f70b249169"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Thu, 22 Feb 2024 06:44:16 GMT
x-amz-version-id: 6jQPnyqY_m5wNH_h0d22D6nkgSgicUIj
cf-cache-status: HIT
age: 135572
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xcydvM7B0Dk4EmfcbTzkdLCy9CphX8S3dUTKhsUnYNGm44TzLu%2BnZwupR1H8zjAyt6vpnVSnni6Y0ymUxtzihaTBTNeDG%2BH%2Bazy1jMMP50lxTANTndXE021X51u%2FmLVXGY7O1ek%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 79e801a43cb80b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| blog.s.id/images/sid-logo-new-dark.svg | 45.126.58.78 | 200 OK | 0 B |
URL HTTP/2blog.s.id/images/sid-logo-new-dark.svg IP 45.126.58.78:0
ASN#132647 Pengelola Nama Domain Internet Indonesia
GET /images/sid-logo-new-dark.svg HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1677239703.1.1.1677239707.0.0.0; _ga=GA1.1.547974949.1677239704; _ga_98MWVCBDD7=GS1.1.1677239703.1.1.1677239707.56.0.0; _gcl_au=1.1.1508841750.1677239704; _gid=GA1.2.929232827.1677239705; _gat_gtag_UA_225238330_2=1; _ga_LBWQJM5WLF=GS1.1.1677239708.1.0.1677239708.60.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:29 GMT
content-type: image/svg+xml
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Fri, 04 Mar 2022 07:03:55 GMT
etag: W/"f40-17f53bdff78"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| blog.s.id/_next/static/chunks/webpack-434fefa8f39d8fbc.js | 45.126.58.78 | 200 OK | 0 B |
URL HTTP/2blog.s.id/_next/static/chunks/webpack-434fefa8f39d8fbc.js IP 45.126.58.78:0
ASN#132647 Pengelola Nama Domain Internet Indonesia
GET /_next/static/chunks/webpack-434fefa8f39d8fbc.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1677239703.1.1.1677239707.0.0.0; _ga=GA1.2.547974949.1677239704; _ga_98MWVCBDD7=GS1.1.1677239703.1.1.1677239707.56.0.0; _gcl_au=1.1.1508841750.1677239704; _gid=GA1.2.929232827.1677239705; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:28 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Fri, 17 Feb 2023 13:41:24 GMT
etag: W/"6db-1865f9bafa0"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| blog.s.id/_next/static/chunks/pages/post/%5B...article%5D-9ffadfb59b43e923.js | 45.126.58.78 | 200 OK | 0 B |
URL HTTP/2blog.s.id/_next/static/chunks/pages/post/%5B...article%5D-9ffadfb59b43e923.js IP 45.126.58.78:0
ASN#132647 Pengelola Nama Domain Internet Indonesia
GET /_next/static/chunks/pages/post/%5B...article%5D-9ffadfb59b43e923.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1677239703.1.1.1677239707.0.0.0; _ga=GA1.2.547974949.1677239704; _ga_98MWVCBDD7=GS1.1.1677239703.1.1.1677239707.56.0.0; _gcl_au=1.1.1508841750.1677239704; _gid=GA1.2.929232827.1677239705; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:28 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Fri, 17 Feb 2023 13:41:24 GMT
etag: W/"46a4-1865f9bafa0"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| blog.s.id/images/adg-red-ring.svg | 45.126.58.78 | 200 OK | 0 B |
URL HTTP/2blog.s.id/images/adg-red-ring.svg IP 45.126.58.78:0
ASN#132647 Pengelola Nama Domain Internet Indonesia
GET /images/adg-red-ring.svg HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1677239703.1.1.1677239707.0.0.0; _ga=GA1.2.547974949.1677239704; _ga_98MWVCBDD7=GS1.1.1677239703.1.1.1677239707.56.0.0; _gcl_au=1.1.1508841750.1677239704; _gid=GA1.2.929232827.1677239705; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:28 GMT
content-type: image/svg+xml
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Sat, 12 Mar 2022 15:31:22 GMT
etag: W/"1926-17f7ec17510"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| ekr.zdassets.com/compose/1dc98855-fcfe-49a8-9ac6-f3d16b24538f | 104.18.72.113 | 200 OK | 0 B |
URL HTTP/2ekr.zdassets.com/compose/1dc98855-fcfe-49a8-9ac6-f3d16b24538f IP 104.18.72.113:0
GET /compose/1dc98855-fcfe-49a8-9ac6-f3d16b24538f HTTP/1.1
Host: ekr.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://blog.s.id
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:29 GMT
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cdn-cache-control: max-age=60
cache-control: max-age=600, public, stale-while-revalidate=600, stale-if-error=21600
etag: W/"294919c4ba58baaaa0054ec15294288e"
x-request-id: 79dbea12af5fbe58-SEA, 79dbea12af5fbe58-SEA
x-runtime: 0.004070
vary: Origin, Accept-Encoding
x-zendesk-zorg: yes
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F5dwBP7bLleAUYqbm4yzkZfNy2BYSIp2FtdEDrL0OnJcWLlOytw5WzYYVAGgay6fAS5REDqrtCPpgdhkpehoSe57irpauIaUiY8rKvBvjqw2P%2FZTmCDGXBxQFF%2FeNU%2BqxRU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 79e801bafbd3fac0-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ekr.zdassets.com/compose/4b27aa03-d3da-43eb-8382-660c054fbc9d | 104.18.72.113 | 200 OK | 0 B |
URL HTTP/2ekr.zdassets.com/compose/4b27aa03-d3da-43eb-8382-660c054fbc9d IP 104.18.72.113:0
GET /compose/4b27aa03-d3da-43eb-8382-660c054fbc9d HTTP/1.1
Host: ekr.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:24 GMT
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cdn-cache-control: max-age=60
cache-control: max-age=600, public, stale-while-revalidate=600, stale-if-error=21600
etag: W/"ce62785f51972df8ee838ed147adf5a1"
x-request-id: 79db1f3f087ed93b-SEA, 79db1f3f087ed93b-SEA
x-runtime: 0.003224
vary: Origin, Accept-Encoding
x-zendesk-zorg: yes
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B9YWu5mi0VyS0KcZNTtYaWiQpT64fpcBNrYk3li0lK6zQ1PFXcXzPDKOtmBq4vt13TmRA5PzYg6wXckVMl4zRgcNNqAkos6i7z4kTMCMH%2FUUKPWS1XN0CjjmQXuxNF6oyzQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 79e8019db8aafac0-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| home.s.id/_next/static/chunks/framework-8ff6c737ed443ded.js | 45.126.58.78 | 200 OK | 0 B |
URL HTTP/2home.s.id/_next/static/chunks/framework-8ff6c737ed443ded.js IP 45.126.58.78:0
ASN#132647 Pengelola Nama Domain Internet Indonesia
GET /_next/static/chunks/framework-8ff6c737ed443ded.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:24 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Fri, 17 Feb 2023 13:42:37 GMT
etag: W/"1fbd0-1865f9cccc8"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| home.s.id/images/sid-logo-new-light.svg | 45.126.58.78 | 200 OK | 0 B |
URL HTTP/2home.s.id/images/sid-logo-new-light.svg IP 45.126.58.78:0
ASN#132647 Pengelola Nama Domain Internet Indonesia
GET /images/sid-logo-new-light.svg HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 11:54:24 GMT
content-type: image/svg+xml
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Sun, 06 Feb 2022 05:21:36 GMT
etag: W/"f40-17ecd7afb00"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|